Cybersecurity Summit: Bengaluru 2023 ISMG%%sep%%Events ismg.events

April 12-13, 2023

Cybersecurity Summit: Bengaluru

8:30 AM - 6:30 PM IST

Event Overview

In this fast-paced technology world, digital transformation has become a strategic need for businesses to stay relevant. Statista’s report forecasts global digital transformation spending to reach $3.4 trillion by 2026, while India aims to be a $1 trillion digital economy by the same year. Against this backdrop, practitioners believe that enterprises will explore the integration of cutting-edge technologies, with a renewed focus on cybersecurity and sustainability.

Brought to you by ISMG, the one-day Cybersecurity Summit in Bengaluru will bring together technology partners and decision-makers from the IT and cybersecurity industry to explore ways to establish their leadership in becoming the beacon of change in the IT and cybersecurity domains. Attend this summit to delve into the varied aspects of new-age technologies such as generative AI, quantum risks, IoT, machine learning, 5G, augmented reality, privacy, continuous threat exposure, and cloud and networking security.

The summit will serve as a platform to share best practices, innovative solutions, and success stories with the cybersecurity fraternity and inspire future leaders.

Sridhar Sidhu

Senior Vice President and Head of Information Security Services Group, Wells Fargo

Jacxine Fernandez

VP – Information Security & ICT Governance, Bangalore International Airport Ltd.

Elavarasu A K

Senior Vice President & CISO, Mphasis

Kumar KV

Group Chief Information Officer, Narayana Health

Manoj Kuruvanthody

CISO & DPO, Tredence Inc.

Ratan Jyoti

Chief Information Security Officer (CISO), Ujjivan Small Finance Bank Ltd.

Visagan Subburayalu

Senior Director Technology - Cybersecurity, Target

Advisors

Thought Leaders on Stage and Leading Deep Dive Discussions

ISMG Summits bring the foremost thought leaders and educators in the security space to the stage, interactive workshops and networking events. Learn from the “who’s who” in Cybersecurity passionate about the latest tools and technology to defend against threats

Speakers

Thought Leaders on Stage and Leading Deep Dive Discussions

Mrutyunjay Mahapatra

Member Board Of Directors and Chairman Audit Committee, Reserve Bank Innovation Hub (RBIH)

Manoj Abraham

Additional Director General of Police, Government of Kerala

Shobha Jagathpal

Managing Director: Global Head Enterprise Security Platforms, India CISO, Morgan Stanley

Kamal Sharma

Vice President , (ISC)² Bangalore Chapter

Shilpa Singh

Vice President- Cyber & Data Resiliency, Wells Fargo

Rajsri Rengan

SVP, Head of Development - Banking & Payments, FIS

Agenda Highlights

Multi Cloud Environment
Cloud Leadership
Security and Privacy Considerations
Hybrid Cloud
Skills Challenge in the 5g era
Economics of Cloud

Agenda

Registration and Exhibition Browsing

Welcome and Opening Remarks – ISMG

Manoj Abraham

ADGP, Govt of Kerala

Dark Web and Threat Intelligence: Understanding Your Enemy

The big challenge impacting enterprise security today is the dark web - a seemingly ungovernable subset of the internet where you can browse and communicate with complete anonymity. Through the use of the dark web and cryptocurrencies, criminals have been able to successfully run the “crime-as-a-service" model. However, businesses and the security agencies have been able to make very little, if any, impact.

How can you make your enterprises cybercrime-resilient, and how should law enforcement respond to this menace? How do security practitioners leverage threat intelligence capabilities to navigate through the dark web?

he session will cover:

Challenges posed by the dark web and cryptocurrencies for enterprise security
How is law enforcement responding to the investigation process and building technical capabilities?
New techniques and approaches used to combat security threats from the dark web
Actionable threat intelligence capabilities in understanding the enemy

Manoj Abraham, ADGP, Govt of Kerala

Mrutyunjay Mahapatra

Member Board Of Directors and Chairman Audit Committee, Reserve Bank Innovation Hub (RBIH)

Keynote: Global Security Challenges and Opportunities in 2023

Among other things, 2022 will be remembered for the Russian invasion of Ukraine and the cyberwarfare that transpired between the two nations. There has also been a significant increase in ransomware attacks on critical infrastructures globally in 2022, including AIIMS, one of India’s leading medical institutes. Following cyberattacks on its critical infrastructure, the Costa Rican government had to declare a national emergency.

Given the sophistication of the threat landscape, how must India be prepared? What are the new security challenges and opportunities in 2023?

The keynote will cover:

Global innovations: how disruptive are they for security ecosystem
What global partnerships can we form to strengthen our cybersecurity policies?
New technologies and frameworks used in enhancing the security posture
What are the key takeaways CISOs need to learn to respond to the challenges?
Consolidation/Rationalization of Regulation

Mrutyunjay Mahapatra, Member Board Of Directors and Chairman Audit Committee, Reserve Bank Innovation Hub (RBIH)

Romanus Prabhu Raymond

Director of Product Support, ManageEngine

Balancing Protection and Productivity: The UEM Approach

Due to the widespread adoption of cloud solutions and remote work in the wake of the COVID-19 pandemic, the attack surfaces of most organizations have experienced a significant increase. To counter this, organizations today need to implement the right cybersecurity strategies for endpoints.

The session will cover:

Business-focused security and employee-friendly practices with unified endpoint management;
The right response and recovery strategy for endpoints to enhance cybersecurity;
A practical approach to protect the endpoints for a secure user access.

Romanus Prabhu Raymond, Director of Product Support, ManageEngine

Networking Break

Avinash Narasimhan

Sales Engineer, OPSWAT

Trust No File: Protection against File borne Malware

File transfer is integral to every organization's day-to-day business and operations, and the risk of malicious files infiltrating your system and storage is rising. On the other side, files have been a common form of threat vector. Hence, organizations need to ensure necessary controls against files in transit and files at rest and a comprehensive security strategy to mitigate risks arising from this vulnerability.

The session will cover:

Protection against known file transfer threats using multiple layers of protection;
Trust nothing and verify using the zero trust framework with deep CDR technology;
Applying the next-gen sandboxing tools.

Avinash Narasimhan, Sales Engineer, OPSWAT

Shobha Jagathpal,

Managing Director Global Head Enterprise Security Platforms, India CISO, Morgan Stanley

SaaS for Cyber Core Services: Are CISOs Tuned In?

SaaS solutions are among the fastest-growing segments in the IT industry. According to McKinsey, the global SaaS market - currently worth about $3 trillion - is estimated to surge to $10 trillion by 2030. This implies that gains from revenue, lower overhead, offloading complex technical work to SaaS providers, and scaling with elasticity should all be balanced with availability of security controls in the offerings so that security-related risks can be managed at acceptable levels. Zooming into the available options and nailing few security controls that can help address core security considerations for control implementation and governance require qualitative and quantitative assurance along with risk acceptances.

Attendees will gain insight into scenarios, learnings, practical challenges and risk acceptances for consuming SaaS offerings for core security services.

The session will cover:

Best practices and security controls to be assessed for core security SaaS solutions;
Continuous monitoring and vigilance requisites;
Critical data protection characteristics for compliance and assurance needs.

Shobha Jagathpal, Managing Director: Global Head Enterprise Security Platforms, India CISO, Morgan Stanley

Fireside Chat -A Debate: Data Privacy vs. InfoSec vs IT: Being on the Same Track

A debate between a data privacy officer, a CIO and a CISO on how to juxtapose privacy and security to achieve total compliance.

The session will cover:

Establishing compliance with complex regulations along with privacy and security
Privacy by design in security controls
Privacy journey from legacy to controls

Sridhar Govardhan (Moderator), Head of Information Security CoinDCX
Nitin Dhavate, Head-Data Privacy, Digital and AI, Novartis
Navaneethan, VP, CISO (Chief Information Security Officer) & DPO Tata Play Group
Arvind Sivaramakrishnan, CIO (Chief Information Officer), Karkinos Healthcare

Lunch

Panel Discussion: Are Digital Currencies the Future? The Security Debate

While AI technologies can increase operational efficiency and decision-making, they also have the potential to become conduits for attacks if not properly secured.

Understanding how an AI-enabled zero rust model can reduce AI-based threats is of paramount importance.

It is critical to determine how zero trust can offer an effective strategy to mitigate AI-based threats and how AI and zero trust can work together for early detection of threats.

The session will cover:

Understanding AI risks and using zero trust to establish security;
Rethinking zero trust;
AI-based approach to cybersecurity.

Rajsri Rengan, SVP, Head of Development – Banking & Payments, FIS
Ritu Verma, Compliance Officer, Pine Labs
Shaik J. Ahmed, Vice President, Head of Information Security – Risk and Governance, Mashreq Bank

Sudip Banerjee

Field CTO, APJ, Zscaler

Implementing Zero Trust and Gaining Buy-In: Practical Strategies for Success

Recent reports on zero trust adoption show that 96% of organizations in India either have a zero trust strategy or are in the process of doing so. Despite the wide adoption of zero trust, getting management buy-in is not easy. Cost, legacy infrastructure and complicated deployment are factors that often derail its implementation. What are some practical strategies to implement zero trust and how to get your 'house in order' before going for a zero trust strategy?

The session will cover:

Essential steps to starting the zero trust journey;
Key considerations for getting the management buy-in for a zero trust implementation;
Essential frameworks for a smooth zero trust implementation.

Sudip Banerjee, Field CTO, APJ, Zscaler

Ankit Wasnik

Solutions Architect, Qualys Inc.

Setting Realistic Cybersecurity Goals: Assessing Risk Inventory and Limitations

Most Indian enterprises consider themselves as being above average or better in their cyber preparedness than their competitors in responding to threats, according to an analytics firm’s survey with senior cyber executives.

However, the most critical aspect of a successful cybersecurity program is doing the basics right, which has a direct impact on the efficacy of the program. It’s similar to the game of Zenga puzzle, where you need the foundation to be strong while you make efforts to consolidate your teams, tool stack, spends. The biggest challenge for organizations today is to get their basics right in cybersecurity.

The session will discuss:

Setting the practical goals around inventory, detection, and remediation engineering
Enhancing the cyber health of the organization at scale and risk reduction
Assessing external risks, limitations, commitments, and resources

Ankit Wasnik, Solutions Architect, Qualys Inc.

Panel Discussion: Building Cyber Resiliency by Design: Effective Frameworks

As organizations embrace (and accelerate) digitalization to offer new and innovative services, the vulnerabilities associated with data and technology will increase. According to research, cybercrime damage is expected to reach $8 trillion in 2023. Almost every organization will be impacted by a cyberattack this year, and it is crucial for businesses to rethink their risk management and incident response strategies.

In the face of an increasing threat landscape, with the growing volume and sophistication of attacks, companies need more than a security solution or governance policy to be prepared for these attacks.

They need a proactive and integrated approach with threat monitoring, threat intelligence, and end-to-end managed services.

That’s where cyber resilience comes in. It is not an afterthought, but needs to be built by design.

The panel will discuss:

The importance of cyber resilience in today’s context, and how do you achieve it in your organization
Cyber resilience versus cybersecurity
How to create a bullet-proof incident response plan
The need for cyber resilience solutions and frameworks

Minatee Mishra, Director, Philips
Arvind Singh, Chief Technology Officer, Executive Vice President- IT, Puravankara Group
Kamal Sharma, Vice President, (ISC)² Bangalore Chapter
Shilpa Singh, Vice President- Cyber & Data Resiliency, Wells Fargo

Suraj Jayaraman

Director, Cloud Security Architect, Microsoft

Future of Security: Threats and Opportunities

Ransomware attacks are becoming inevitable as bad actors exploit the weakest link of cyber defense - humans. The goal of cyber resilience is to transform business expectations and guarantee that businesses face a less-than-significant impact from a cyberattack. NIST defines cyber resiliency as the ability to anticipate, withstand, recover from, and adapt to adverse conditions, stresses and attacks by cyber resources. The recovery process needs to ensure not only a quick recovery but also a quicker return to business. What is your current cyber recovery strategy? What challenges are you facing under recovery?

The session will cover:

How much to rely on backups
Practicality of creating an alternate environment
Leveraging cloud for better resilience

Suraj Jayaraman, Director, Cloud Security Architect, Microsoft

Fireside Chat -Payments Fraud: How to Stop Cyber Perpetrators

More than 90% of consumers around the world rely on online payments, according to a research study. This, however, brings with it an increase in transaction fraud. Fraudsters are relying on synthetic IDs to carry out various card-related frauds.

Social engineering is also increasingly becoming a deceptive tactic to trick people into divulging information. With so much going on, how can the payment industry tackle the new-age methods to reduce fraud?

The session will cover:

The new forms of fraud tactics
The shortcomings of the current defensive approach
What needs to change in 2023

Anuj Bhansali, Head – Trust & Safety, PhonePe
Dr. Lopa Mudraa Basuu, Ex. VP ISM Cyber Security & Technology Controls (APAC & EMEA), JPMorgan Chase & Co.

Panel Discussion: Enabling Business Growth in the VUCA World: CISOs’ Action Plan for 2023

We are living in a VUCA world – a world that is volatile, uncertain, complex and ambiguous. As per India’s policymakers, VUCA is nothing but the AAJA world - Asthirata, which means volatility or a high rate of change; Anishchita, which means uncertainty and lack of clarity about the present and the future; Jatilata, which means complexity concerning multiple factors that impact critical decisions; and Aspashtata, which means ambiguity about the unprecedented and challenging times in the industry.

We are into 2023, and are witnessing growing chaos in the cybersecurity domain with multiple forms of attacks targeting enterprises.

What kind of conversations do the security teams need to have, what should be their strategies and what is their focus area?

The panel will discuss:

Cybersecurity lessons learned from economic uncertainty
New forms of security defenses enterprises have adopted in 2023
What’s top of mind for CISOs in tackling this situation

Satyavathi Divadari, Chapter Chair, Cloud Security Alliance Bangalore Chapter (CSA)
Bastin Robin, CTO / Chief Data Scientist, CleverInsight
Shyam Krishnamurthy, Country Head / Head of Engineering Travel, AirAsia Super App
Visagan Subburayalu, Senior Director Technology – Cybersecurity, Target

Closing Remarks

Venue

JW Marriott Hotel Bengaluru

Bengaluru

Don’t miss your chance to attend this dynamic impactful event

@ISMG_News

#ISMGSummits

The Summit Experience

CPE Credits

Engage offers Continuing Education Credits. Learn informative and engaging content created specifically for security professionals.

Register

RSVP here to attend our events. You can select for multiple or individual tickets.

Upcoming ISMG Events

May 15, 2024

Prevent, Contain, Minimise the Impact of Cyberattacks to Ensure your Organization's Resilience

See Event

April 16, 2024

Cybersecurity Implications of AI Summit: North America West Summit

See Event

April 24, 2024

Securing OT/IoT in the Age of Automation and Cloud Integration

See Event

June 13, 2024

Cybersecurity & Business Transformation Summit: Bengaluru

See Event

April 10, 2024

Strategies and Mandates for Phishing-Resistant MFA in Financial Services and Healthcare

See Event

Upcoming ISMG Events

May 15, 2024

Prevent, Contain, Minimise the Impact of Cyberattacks to Ensure your Organization's Resilience

See Event

April 16, 2024

Cybersecurity Implications of AI Summit: North America West Summit

See Event

April 24, 2024

Securing OT/IoT in the Age of Automation and Cloud Integration

See Event

April 12-13, 2023